CVE-2025-52099

Integer Overflow vulnerability in SQLite SQLite3 v.3.50.0 allows a remote attacker to cause a denial of service via the setupLookaside function
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CISA-ADPADP
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
Debian logo
Debian Releases
Debian Product
Codename
sqlite3
bullseye
unimportant
bullseye (security)
unimportant
bookworm
unimportant
trixie
3.46.1-7
fixed
forky
3.46.1-8
fixed
sid
3.46.1-8
fixed
Common Weakness Enumeration
References
http://sqlite3.com
https://github.com/SCREAMBBY/CVE-2025-52099
https://github.com/SCREAMBBY/CVE-2025-52099